Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-_B9dPHqGNzgYeWuyig1xhLRSpU.roa
File: -_B9dPHqGNzgYeWuyig1xhLRSpU.roa (raw, json)
Hash identifier: NGYguCNQUIFrxOI1/hHCRh50n9/QbjFRVTYAZKgNAVs=
Subject key identifier: FB:F0:7D:74:F1:EA:18:DC:E0:61:E5:AE:CA:28:35:C6:12:D1:4A:95
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1272
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-_B9dPHqGNzgYeWuyig1xhLRSpU.roa
Signing time: Fri 01 Sep 2023 08:04:28 +0000
ROA not before: Fri 01 Sep 2023 08:04:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131142
IP address blocks: 210.200.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4722 (0x1272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 1 08:04:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FBF07D74F1EA18DCE061E5AECA2835C612D14A95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7d:20:85:43:6d:b6:86:c2:81:e0:97:95:ea:
07:9c:46:ac:c3:54:8c:6a:0f:74:d0:8c:f7:9e:ce:
76:56:bf:2a:3f:1e:fe:bd:4b:9c:5a:9b:94:5a:8b:
e2:e8:6d:e6:6d:2a:ca:4d:55:66:04:73:e2:93:74:
4f:7e:f9:7e:3f:ef:6e:95:6f:54:73:fa:7f:da:a0:
db:e5:0a:76:c9:e6:22:2a:06:9d:31:8f:33:4a:53:
12:48:fd:e0:fd:71:5e:df:dd:72:58:73:cd:02:aa:
cf:6f:00:20:11:f3:a9:2c:90:3a:ff:89:70:b0:f0:
6b:c8:9e:be:6d:b0:87:c6:71:76:8a:06:c6:d5:60:
88:ea:75:d8:a0:bc:7f:de:7b:fe:34:ce:79:0d:e5:
a1:5c:8a:a5:f8:2c:1e:2d:d4:70:28:16:ce:78:db:
95:2f:6f:12:aa:ad:f5:b1:aa:6b:8f:e5:97:83:7f:
08:83:28:e2:29:7b:b1:0b:34:f9:53:0a:54:ab:0e:
30:2c:17:a5:f6:2c:11:08:d2:fb:83:8c:01:9b:51:
aa:cd:ac:d1:5c:c8:60:4c:c1:9b:81:7f:8c:06:96:
c3:57:05:dc:3a:b1:00:36:a6:af:33:36:e9:0f:14:
12:67:16:49:03:a6:22:a2:fb:33:ec:cf:ff:fc:50:
36:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F0:7D:74:F1:EA:18:DC:E0:61:E5:AE:CA:28:35:C6:12:D1:4A:95
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-_B9dPHqGNzgYeWuyig1xhLRSpU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
97:b9:bd:d1:f5:85:33:8b:4c:9f:03:ca:4c:5b:02:73:87:37:
5f:2c:f4:f7:ac:84:bb:99:e9:70:66:ae:f5:12:50:db:c2:67:
89:62:d4:a4:42:d0:4a:06:da:9d:82:08:26:d5:1d:5c:44:3a:
70:ca:80:9b:1a:a4:3a:cb:6d:fc:f2:e7:a6:7d:af:2b:a7:c3:
b1:77:72:c2:e5:40:b3:2b:d8:9d:1d:6c:68:b0:20:cd:eb:17:
2a:4e:ef:c5:12:b5:02:40:b6:82:04:4a:3f:11:49:bd:f8:77:
65:fe:a6:31:be:89:93:84:a5:01:b3:26:36:0e:95:45:21:48:
2d:79:d3:16:ef:99:a8:27:eb:b3:b7:b4:63:23:b8:fb:f1:ae:
f6:3b:e2:3e:35:2a:9b:99:cd:aa:47:b6:7a:f5:82:13:90:e4:
8f:44:19:18:ba:b7:04:b4:e3:36:35:db:f7:b3:fe:c6:10:fa:
cf:30:4b:7f:e4:3f:92:8b:77:2b:f5:98:df:0e:b0:0b:ed:1f:
a9:86:85:2e:e6:cd:ca:7b:11:78:70:b8:8a:c0:0d:35:b5:33:
54:ca:6c:d6:ae:31:ff:5f:f5:fd:70:3f:04:c5:4d:59:8e:52:
e9:92:64:de:40:73:1b:33:e2:d1:4a:62:43:b4:60:26:67:f1:
bb:26:42:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org